Solved

Changing Permissions on multiple folders for different users easily.

Posted on 2006-06-22
11
312 Views
Last Modified: 2012-05-05
What happened is someone changed the security under all the user profile folders to "everyone" with full permissions and no one else.

These are user folders and the problem is everyone can get into everyone elses data.

What I was hoping is to have a script that would add the user to the folder with full permissions, add administrator with full permissions, and remove everyone.

Anyway to do this easily without having to change them by hand one at a time. Their is 3600 users on this server so we need another option.

Also the folder name is the users name who owns it.
0
Comment
Question by:Roginsky
  • 6
  • 5
11 Comments
 
LVL 83

Accepted Solution

by:
oBdA earned 500 total points
ID: 16964417
The following batch script will walk through the folders and change the permissions; it adds the System account as well.

@echo off
setlocal
:: *** Path to the home folder root:
set HomeRoot=\\SomeServer\Home
for /d %%a in ("%HomeRoot%\*.*") do (
  ECHO xcacls "%%a" /t /g %Userdomain%\%%~nxa:F Administrators:F System:F /y
)

It's currently in test mode, it will only display the cacls command it would otherwise run. To run it for real, remove the capitalized ECHO.
Try this with a dummy home share (just a share with some folders named like user accounts) first to check if it works correctly. If that proves successful, run it against the real home folder.
0
 

Author Comment

by:Roginsky
ID: 16964474
This still won't help me to add the user to have full permissions.

Example if the user name is 10001a then the folder's name is 10001a so I just need that user to have permissions to that folder.

Also it didn't work on the test folders I setup. They still only have "Everyone" and no other groups.
0
 
LVL 83

Expert Comment

by:oBdA
ID: 16964500
Yes, and that's what this script should do. Did you see the remark about the test mode and removing the ECHO to run it for real? With the ECHO in it, it should just list the xcacls commands it would otherwise run.
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:Roginsky
ID: 16964516
Yes I did read what was posted.
0
 
LVL 83

Expert Comment

by:oBdA
ID: 16964530
Well, what happened? Any error messages?
0
 

Author Comment

by:Roginsky
ID: 16964630
I get the popup that I am not using cscript engine to run the command. and nothing happens.

I just now add cscript where ECHO use to be.

I get this error.

Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.

Input Error: There is no file extension in "C:\xcacls".
0
 
LVL 83

Expert Comment

by:oBdA
ID: 16964655
That's a batch script; you need to save it as whatever.cmd, not whatever.vbs.
0
 

Author Comment

by:Roginsky
ID: 16964677
I edited the file and it works. It was getting an error with the /y option it says no such option.

here is what worked seems to work. it added the correct permissions how I wanted it.

@echo off
setlocal
:: *** Path to the home folder root:
set HomeRoot=\\siena\test
for /d %%a in ("%HomeRoot%\*.*") do (
cscript xcacls.vbs "%%a" /t /g %Userdomain%\%%~nxa:F Administrators:F users:F
  )
0
 

Author Comment

by:Roginsky
ID: 16964680
and yes I know I saved it as .bat

it wanted the .vbs after xcacls
0
 
LVL 83

Expert Comment

by:oBdA
ID: 16966764
Sorry, forgot that xcacls is an extra download; check here:
Windows 2000 Resource Kit Tool: Xcacls.exe
http://www.microsoft.com/downloads/details.aspx?FamilyID=7a3e2241-d7d0-42b6-b86e-6eda88726c01&displaylang=en

Otherwise,
echo y| cacls.exe "%%a" /t /g %Userdomain%\%%~nxa:F Administrators:F users:F
should do the trick, too.
0
 

Author Comment

by:Roginsky
ID: 16985097
Yeah I have xcacls and the echo y didn't work I just used what I put three responses up
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Read about the ways of improving workplace communication.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now